We first need to download the package that we are going to infect and move it to a temporary working directory. In our example, we will use the package ‘freesweep’, a text-based version of Mine Sweeper.

In the ‘DEBIAN’ directory, create a file named ‘control’ that contains the following:

root@kali:/tmp/evil/work/DEBIAN# cat control
Package: freesweep
Version: 0.90-1
Section: Games and Amusement
Priority: optional
Architecture: i386
Maintainer: Ubuntu MOTU Developers (ubuntu-motu@lists.ubuntu.com)
Description: a text-based minesweeper
Freesweep is an implementation of the popular minesweeper game, where
one tries to find all the mines without igniting any, based on hints given
by the computer. Unlike most implementations of this game, Freesweep
works in any visual text display - in Linux console, in an xterm, and in
most text-based terminals currently in use.

We also need to create a post-installation script that will execute our binary. In our ‘DEBIAN’, we’ll create a file named ‘postinst’ that contains the following:

We’ll now make our post-installation script executable and build our new package. The built file will be named ‘work.deb’ so we will want to change that to ‘freesweep.deb’ and copy the package to our web root directory.